Skip to content

Bump the cargo-dependencies group with 2 updates#7

Closed
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/cargo/cargo-dependencies-384e575b67
Closed

Bump the cargo-dependencies group with 2 updates#7
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/cargo/cargo-dependencies-384e575b67

Conversation

@dependabot
Copy link
Copy Markdown

@dependabot dependabot bot commented on behalf of github Mar 5, 2026
edited
Loading

Bumps the cargo-dependencies group with 2 updates: tokio and zip.

Updates tokio from 1.49.0 to 1.50.0

Release notes

Sourced from tokio's releases.

Tokio v1.50.0

1.50.0 (Mar 3rd, 2026)

Added

  • net: add TcpStream::set_zero_linger (#7837)
  • rt: add is_rt_shutdown_err (#7771)

Changed

  • io: add optimizer hint that memchr returns in-bounds pointer (#7792)
  • io: implement vectored writes for write_buf (#7871)
  • runtime: panic when event_interval is set to 0 (#7838)
  • runtime: shorten default thread name to fit in Linux limit (#7880)
  • signal: remember the result of SetConsoleCtrlHandler (#7833)
  • signal: specialize windows Registry (#7885)

Fixed

  • io: always cleanup AsyncFd registration list on deregister (#7773)
  • macros: remove (most) local use declarations in tokio::select! (#7929)
  • net: fix GET_BUF_SIZE constant for target_os = "android" (#7889)
  • runtime: avoid redundant unpark in current_thread scheduler (#7834)
  • runtime: don't park in current_thread if before_park defers waker (#7835)
  • io: fix write readiness on ESP32 on short writes (#7872)
  • runtime: wake deferred tasks before entering block_in_place (#7879)
  • sync: drop rx waker when oneshot receiver is dropped (#7886)
  • runtime: fix double increment of num_idle_threads on shutdown (#7910, #7918, #7922)

Unstable

  • fs: check for io-uring opcode support (#7815)
  • runtime: avoid lock acquisition after uring init (#7850)

Documented

  • docs: update outdated unstable features section (#7839)
  • io: clarify the behavior of AsyncWriteExt::shutdown() (#7908)
  • io: explain how to flush stdout/stderr (#7904)
  • io: fix incorrect and confusing AsyncWrite documentation (#7875)
  • rt: clarify the documentation of Runtime::spawn (#7803)
  • rt: fix missing quotation in docs (#7925)
  • runtime: correct the default thread name in docs (#7896)
  • runtime: fix event_interval doc (#7932)
  • sync: clarify RwLock fairness documentation (#7919)
  • sync: clarify that recv returns None once closed and no more messages (#7920)
  • task: clarify when to use spawn_blocking vs dedicated threads (#7923)
  • task: doc that task drops before JoinHandle completion (#7825)
  • signal: guarantee that listeners never return None (#7869)
  • task: fix task module feature flags in docs (#7891)

... (truncated)

Commits

Updates zip from 8.1.0 to 8.2.0

Release notes

Sourced from zip's releases.

v8.2.0

🚀 Features

  • allow custom salt (#680)
  • Support compressing bzip2 when feature bzip2-rs is enabled, since bzip2/bzip2-sys now supports it (#685)
  • enforce clippy in CI (#674)

🐛 Bug Fixes

  • zip64 central header (issue 617) (#629)
  • allow aes password as bytes (#686)
  • handle extra field padding (#682)

🚜 Refactor

  • Simplify 2 type conversions in src/write.rs (#687)

⚡ Performance

  • AI tweaks for string type conversions in src/types.rs (#670)
Changelog

Sourced from zip's changelog.

8.2.0 - 2026-03-02

🚀 Features

  • allow custom salt (#680)
  • Support compressing bzip2 when feature bzip2-rs is enabled, since bzip2/bzip2-sys now supports it (#685)
  • enforce clippy in CI (#674)

🐛 Bug Fixes

  • zip64 central header (issue 617) (#629)
  • allow aes password as bytes (#686)
  • handle extra field padding (#682)

🚜 Refactor

  • Simplify 2 type conversions in src/write.rs (#687)

⚡ Performance

  • AI tweaks for string type conversions in src/types.rs (#670)
Commits
  • ff001c6 chore: release v8.2.0 (#678)
  • 9c328dc ci(deps): bump github/codeql-action from 4.32.2 to 4.32.4 (#707)
  • f2bd439 test: add test to check len of zip64 (#705)
  • 617cee1 test: Add a test that validates CRC_TABLE (#690)
  • 2ee1e93 style: Rename KEYSTREAM_BASE_SUFFIX to KEYSTREAM_BITMASK and clarify comment ...
  • 18301ce style: Potential fix for 1 code quality finding in tests/zip_ntfs.rs (#702)
  • 240f27a feat: allow custom salt (#680)
  • 8c36837 ci(deps): bump actions/dependency-review-action from 4.8.2 to 4.8.3 (#698)
  • 79a46ea Apply suggested fix to tests/zip_extra_field.rs from Copilot Autofix (#701)
  • 7c2c6bd style: Remove macros (#689)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the cargo-dependencies group with 2 updates
bfea185 
Bumps the cargo-dependencies group with 2 updates: [tokio](https://github.com/tokio-rs/tokio) and [zip](https://github.com/zip-rs/zip2).


Updates `tokio` from 1.49.0 to 1.50.0
- [Release notes](https://github.com/tokio-rs/tokio/releases)
- [Commits](tokio-rs/tokio@tokio-1.49.0...tokio-1.50.0)

Updates `zip` from 8.1.0 to 8.2.0
- [Release notes](https://github.com/zip-rs/zip2/releases)
- [Changelog](https://github.com/zip-rs/zip2/blob/master/CHANGELOG.md)
- [Commits](zip-rs/zip2@v8.1.0...v8.2.0)

---
updated-dependencies:
- dependency-name: tokio
  dependency-version: 1.50.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: cargo-dependencies
- dependency-name: zip
  dependency-version: 8.2.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: cargo-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file rust Pull requests that update rust code labels Mar 5, 2026
@dependabot @github
Copy link
Copy Markdown
Author

dependabot bot commented on behalf of github Mar 12, 2026

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Mar 12, 2026
@dependabot dependabot bot deleted the dependabot/cargo/cargo-dependencies-384e575b67 branch March 12, 2026 13:36
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file rust Pull requests that update rust code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants